Bug 457525 (CVE-2008-3422)

Summary: CVE-2008-3422 mono: XSS vulnerabilities in the ASP.net class libraries
Product: [Other] Security Response Reporter: Tomas Hoger <thoger>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED UPSTREAM QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: lxtnow, paul
Target Milestone: ---Keywords: Reopened, Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-12-23 22:26:30 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 461753, 461754    
Bug Blocks:    

Description Tomas Hoger 2008-08-01 11:07:46 UTC 
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-3422 to the
following vulnerability:

Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net
class libraries in Mono 2.0 and earlier allow remote attackers to
inject arbitrary web script or HTML via crafted attributes related to
(1) HtmlControl.cs (PreProcessRelativeReference), (2) HtmlForm.cs
(RenderAttributes), (3) HtmlInputButton (RenderAttributes), (4)
HtmlInputRadioButton (RenderAttributes), and (5) HtmlSelect
(RenderChildren).

References:
https://bugzilla.novell.com/show_bug.cgi?id=413534
http://lists.ximian.com/pipermail/mono-devel-list/2008-July/028633.html

Upstream commits (according to SuSE BZ):
mono-1-9 r109358, mono-2-0 r109348 and trunk r109349
http://anonsvn.mono-project.com/viewcvs?rev=109358&view=rev
Comment 2 Paul F. Johnson 2008-09-10 12:59:59 UTC 
This looks to be fixed in the 2.0 RC 1 and 2.0 preview 1 candidate.
Comment 3 Tomas Hoger 2008-09-10 13:13:09 UTC 
What about F8 / F9?
Comment 4 Vincent Danen 2010-12-23 22:26:30 UTC 
Current mono in Fedora is 2.6.4 or newer.  No need to keep this open.